General

  • Target

    TEST1.exe

  • Size

    61KB

  • Sample

    240612-vpvvrawfpk

  • MD5

    17652b12276e49894bd809c94046c026

  • SHA1

    a11ead44c1a6d22cb76b48a33e86aff12368e7cb

  • SHA256

    a44f5ce561a6a1f40210df4069da321e8150092a2dd6d3d2189e3e13945cf66d

  • SHA512

    b0824d4d3cf3b8ad2ed8b58607f3cc10f70fc21cb841511598ead0847acdac73f631176dc1fa4c89b3c1383b19097c828d765afe0665b5b451d62de70f3b6b3d

  • SSDEEP

    1536:nEiBwAw/cGYQi1y2QNAx1FcLD12Qs7yGVd7Usnouy8yIR2Lp:dB9wUGYQN2XD6UdJoutyIEl

Malware Config

Targets

    • Target

      TEST1.exe

    • Size

      61KB

    • MD5

      17652b12276e49894bd809c94046c026

    • SHA1

      a11ead44c1a6d22cb76b48a33e86aff12368e7cb

    • SHA256

      a44f5ce561a6a1f40210df4069da321e8150092a2dd6d3d2189e3e13945cf66d

    • SHA512

      b0824d4d3cf3b8ad2ed8b58607f3cc10f70fc21cb841511598ead0847acdac73f631176dc1fa4c89b3c1383b19097c828d765afe0665b5b451d62de70f3b6b3d

    • SSDEEP

      1536:nEiBwAw/cGYQi1y2QNAx1FcLD12Qs7yGVd7Usnouy8yIR2Lp:dB9wUGYQN2XD6UdJoutyIEl

    • UAC bypass

    • Stops running service(s)

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v15

Tasks